poky/meta/recipes-devtools/python
Narpat Mali 79dd246cc5 python3-setuptools: fix for CVE-2022-40897
Python Packaging Authority (PyPA) setuptools before 65.5.1 allows remote attackers
to cause a denial of service via HTML in a crafted package or custom PackageIndex
page. There is a Regular Expression Denial of Service (ReDoS) in package_index.py.

CVE: CVE-2022-40897

Upstream-Status: Backport [43a9c9bfa6]

cherry-pick and modify from OE-Core rev: f574d8d57ff3fbc38e350e7a90913993081c4fdf

(From OE-Core rev: f2230ead6c145efc902336b2b9d5a4f0ecb749de)

Signed-off-by: Narpat Mali <narpat.mali@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Chee Yang Lee <chee.yang.lee@intel.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2023-04-04 17:46:24 +01:00
..
python-rfc3986-validator python: import rfc3986-validator from meta-python 2021-11-26 17:01:08 +00:00
python3 get_module_deps3.py: Check attribute '__file__' 2022-11-24 15:30:06 +00:00
python3-atomicwrites python3-atomicwrites: move from meta-python 2020-11-30 14:42:22 +00:00
python3-bcrypt python3-bcrypt: move from meta-python 2022-03-16 08:48:08 +00:00
python3-cryptography python3-cryptography: remove --benchmark-disable option 2022-05-20 22:52:22 +01:00
python3-hypothesis python3-hypothesis: enable ptest 2021-08-22 22:21:47 +01:00
python3-installer python3-installer: add installer module 2022-03-16 08:48:09 +00:00
python3-jinja2 python3-jinja2: Import from meta-oe/meta-python 2020-09-21 23:54:39 +01:00
python3-jsonpointer python: import jsonpointer from meta-python 2021-11-26 17:01:08 +00:00
python3-markupsafe python3-markupsafe: Import from meta-oe/meta-python 2020-09-21 23:54:39 +01:00
python3-more-itertools python3-more-itertools: move from meta-python 2020-11-30 14:42:22 +00:00
python3-numpy python3-numpy: update 1.22.3 -> 1.22.4 2022-06-22 22:40:28 +01:00
python3-pbr python3-pbr: change shebang to python3 2020-04-26 14:00:51 +01:00
python3-pip python3-pip: remove unneeded reproducible.patch 2022-09-02 15:58:25 +01:00
python3-pluggy python3-pluggy: move from meta-python 2020-11-30 14:42:22 +00:00
python3-pyasn1 python3-pyasn1: Eliminated ptest deprecation warnings 2022-06-17 17:57:44 +01:00
python3-pygobject python3-pygobject: update to 3.32.1 2019-04-26 10:09:08 +01:00
python3-pytz python3-pytz: move from meta-python 2022-03-16 08:48:08 +00:00
python3-scons python3-scons{-native}: upgrade 4.1.0 -> 4.2.0 2021-08-12 06:26:16 +01:00
python3-setuptools python3-setuptools: fix for CVE-2022-40897 2023-04-04 17:46:24 +01:00
python3-smartypants python3-smartypants: patch hash bang to python3 2022-02-25 15:07:50 +00:00
python3-strict-rfc3339 python3-subunit: merge inc; set PIP_INSTALL_PACKAGE 2022-02-25 15:07:50 +00:00
python3-wcwidth python3-wcwidth: move from meta-python 2020-11-30 14:42:22 +00:00
python3-webcolors python: import webcolors from meta-python 2021-11-26 17:01:08 +00:00
python3-wheel python3-wheel: inherit flit_core 2022-02-25 15:07:50 +00:00
python-async.inc Convert to new override syntax 2021-08-02 15:44:10 +01:00
python-cython.inc python3-cython: upgrade 0.29.30 -> 0.29.32 2022-08-04 16:27:25 +01:00
python-extras.inc python: use official "pypi.org" URLs for HOMEPAGE 2020-06-23 12:31:03 +01:00
python-gitdb.inc python3-gitdb: upgrade 4.0.7 -> 4.0.9 2021-11-03 11:12:25 +00:00
python-pbr.inc Convert to new override syntax 2021-08-02 15:44:10 +01:00
python-pyasn1.inc python3-pyasn1: Eliminated ptest deprecation warnings 2022-06-17 17:57:44 +01:00
python-pycryptodome.inc python3-pycryptodome: update 3.12.0 -> 3.14.0 2022-02-03 09:05:14 +00:00
python-six.inc Convert to new override syntax 2021-08-02 15:44:10 +01:00
python-testtools.inc Convert to new override syntax 2021-08-02 15:44:10 +01:00
python3_3.10.6.bb python3: add PACKAGECONFIG[editline] 2022-09-17 07:47:07 +01:00
python3-alabaster_0.7.12.bb python3-alabaster: Add new recipe 2022-03-18 23:27:27 +00:00
python3-asn1crypto_1.5.1.bb python3-asn1crypto: upgrade 1.4.0 -> 1.5.1 2022-03-30 13:07:41 +01:00
python3-async_0.6.2.bb python-async: use pypi.bbclass 2017-12-13 14:00:52 +00:00
python3-atomicwrites_1.4.1.bb python3-atomicwrites: upgrade 1.4.0 -> 1.4.1 2022-07-12 23:56:10 +01:00
python3-attrs_22.1.0.bb python3-attrs: upgrade 21.4.0 -> 22.1.0 2022-08-04 16:27:25 +01:00
python3-babel_2.10.3.bb python3-babel: upgrade 2.10.1 -> 2.10.3 2022-06-29 16:16:56 +01:00
python3-bcrypt_3.2.2.bb python3-bcrypt: upgrade 3.2.0 -> 3.2.2 2022-05-20 22:52:23 +01:00
python3-certifi_2022.9.14.bb python3-certifi: upgrade 2022.6.15 -> 2022.9.14 2022-09-20 23:17:53 +01:00
python3-cffi_1.15.1.bb python3-cffi: upgrade 1.15.0 -> 1.15.1 2022-07-08 00:09:42 +01:00
python3-chardet_5.0.0.bb python3-chardet: upgrade 4.0.0 -> 5.0.0 2022-06-29 16:16:56 +01:00
python3-cryptography_37.0.4.bb python3-cryptography: upgrade 37.0.3 -> 37.0.4 2022-07-12 23:56:10 +01:00
python3-cryptography-vectors_37.0.4.bb python3-cryptography-vectors: upgrade 37.0.3 -> 37.0.4 2022-07-12 23:56:10 +01:00
python3-cython_0.29.32.bb python3-cython: Remove debug lines 2022-08-21 22:51:41 +01:00
python3-dbus_1.2.18.bb python3-dbus: inherit setuptools3-base not distuils 2022-01-12 21:09:01 +00:00
python3-dbusmock_0.28.4.bb python3-dbusmock: upgrade 0.28.1 -> 0.28.4 2022-08-04 16:27:25 +01:00
python3-docutils_0.19.bb python3-docutils: upgrade 0.18.1 -> 0.19 2022-07-19 10:54:20 +01:00
python3-dtschema_2022.8.3.bb python3-dtschema: upgrade 2022.8.1 -> 2022.8.3 2022-09-08 14:59:39 +01:00
python3-editables_0.3.bb Add python3-editables (from meta-python) 2022-06-22 22:40:28 +01:00
python3-extras_1.0.0.bb python3-extras: add it for python3-testtools 2018-07-30 12:44:35 +01:00
python3-flit-core_3.7.1.bb python_pep517: use picobuild instead of manually calling the API 2022-07-14 23:22:10 +01:00
python3-git_3.1.27.bb classes/setuptools_build_meta: rename to python_setuptools_build_meta 2022-03-20 00:02:22 +00:00
python3-gitdb_4.0.9.bb python3-gitdb: upgrade 4.0.7 -> 4.0.9 2021-11-03 11:12:25 +00:00
python3-hatch-vcs_0.2.0.bb python3-hatch-vcs: fix upstream version check 2022-06-28 12:55:26 +01:00
python3-hatchling_1.9.0.bb python3-hatchling: upgrade 1.8.1 -> 1.9.0 2022-09-17 07:47:07 +01:00
python3-hypothesis_6.54.5.bb python3-hypothesis: upgrade 6.46.11 -> 6.54.5 2022-09-17 07:47:08 +01:00
python3-idna_3.4.bb python3-idna: migrate to flit-core 2022-09-20 23:17:53 +01:00
python3-imagesize_1.4.1.bb python3-imagesize: upgrade 1.3.0 -> 1.4.1 2022-07-12 23:56:10 +01:00
python3-importlib-metadata_4.12.0.bb python3-importlib-metadata: upgrade 4.11.4 -> 4.12.0 2022-06-29 16:16:56 +01:00
python3-iniconfig_1.1.1.bb classes/setuptools_build_meta: rename to python_setuptools_build_meta 2022-03-20 00:02:22 +00:00
python3-iniparse_0.5.bb meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers 2022-02-20 16:45:25 +00:00
python3-installer_0.5.1.bb python_pep517: use picobuild instead of manually calling the API 2022-07-14 23:22:10 +01:00
python3-iso8601_1.0.2.bb poetry_core: Rename to python_poetry_core 2022-03-16 08:48:08 +00:00
python3-jinja2_3.1.2.bb python3-jinja2: upgrade 3.1.1 -> 3.1.2 2022-05-05 21:17:38 +01:00
python3-jsonpointer_2.3.bb python3-jsonpointer: upgrade 2.2 -> 2.3 2022-04-20 13:13:59 +01:00
python3-jsonschema_4.9.1.bb python3-jsonschema: upgrade 4.9.0 -> 4.9.1 2022-08-10 08:25:28 +01:00
python3-libarchive-c_4.0.bb meta: remove obsolete PIP_INSTALL_PACKAGE 2022-03-12 09:20:03 +00:00
python3-lxml_4.9.1.bb python3-lxml: Add recipe 2022-09-12 08:33:55 +01:00
python3-magic_0.4.27.bb python3-magic: upgrade 0.4.26 -> 0.4.27 2022-06-21 18:44:27 +01:00
python3-mako_1.2.3.bb python3-mako: upgrade 1.2.2 -> 1.2.3 2022-11-24 15:30:06 +00:00
python3-markdown_3.4.1.bb python3-markdown: upgrade 3.3.7 -> 3.4.1 2022-08-10 08:25:28 +01:00
python3-markupsafe_2.1.1.bb python3-markupsafe: upgrade 2.1.0 -> 2.1.1 2022-03-23 12:13:50 +00:00
python3-more-itertools_8.14.0.bb python3-more-itertools: upgrade 8.13.0 -> 8.14.0 2022-08-21 22:51:42 +01:00
python3-ndg-httpsclient_0.5.1.bb python3-ndg-httpsclient: Add from meta-oe/meta-python 2022-03-18 23:27:27 +00:00
python3-numpy_1.23.3.bb meta: fix version checks in all github recipes using the github-releases class 2022-09-28 08:01:10 +01:00
python3-packaging_21.3.bb classes/setuptools_build_meta: rename to python_setuptools_build_meta 2022-03-20 00:02:22 +00:00
python3-pathlib2_2.3.7.bb python3-pathlib2: upgrade 2.3.6 -> 2.3.7 2022-02-16 09:46:29 +00:00
python3-pathspec_0.10.1.bb python3-pathspec: upgrade 0.9.0 -> 0.10.1 2022-09-08 14:59:39 +01:00
python3-pbr_5.10.0.bb python3-pbr: upgrade 5.9.0 -> 5.10.0 2022-08-21 22:51:42 +01:00
python3-picobuild_0.2.bb python3-picobuild: upgrade to 0.2 2022-07-18 13:24:36 +01:00
python3-pip_22.2.2.bb python3-pip: remove unneeded reproducible.patch 2022-09-02 15:58:25 +01:00
python3-pluggy_1.0.0.bb python3-pluggy: add BBCLASSEXTEND for native/nativesdk 2022-05-27 23:50:47 +01:00
python3-ply_3.11.bb python3-ply: move from meta-python 2022-03-16 08:48:08 +00:00
python3-poetry-core_1.0.8.bb poetry_core: Rename to python_poetry_core 2022-03-16 08:48:08 +00:00
python3-pretend_1.0.9.bb python3-pretend: move from meta-python 2022-03-16 08:48:08 +00:00
python3-psutil_5.9.2.bb python3-psutil: upgrade 5.9.1 -> 5.9.2 2022-09-17 07:47:08 +01:00
python3-py_1.11.0.bb classes/setuptools_build_meta: rename to python_setuptools_build_meta 2022-03-20 00:02:22 +00:00
python3-pyasn1_0.4.8.bb python3-pyasn1: Add from meta-oe/meta-python 2022-03-18 23:27:27 +00:00
python3-pycairo_1.21.0.bb meta: fix version checks in all github recipes using the github-releases class 2022-09-28 08:01:10 +01:00
python3-pycparser_2.21.bb python3-pycparser: move from meta-python 2022-03-16 08:48:08 +00:00
python3-pycryptodome_3.15.0.bb python3-pycryptodome: upgrade 3.14.1 -> 3.15.0 2022-06-29 16:16:56 +01:00
python3-pycryptodomex_3.15.0.bb python3-pycryptodomex: upgrade 3.14.1 -> 3.15.0 2022-07-08 00:09:42 +01:00
python3-pyelftools_0.29.bb python3-pyelftools: upgrade 0.28 -> 0.29 2022-08-21 22:51:42 +01:00
python3-pygments_2.13.0.bb python3-pygments: upgrade 2.12.0 -> 2.13.0 2022-08-30 10:33:35 +01:00
python3-pygobject_3.42.2.bb python3-pygobject: upgrade 3.42.1 -> 3.42.2 2022-08-04 16:27:25 +01:00
python3-pyopenssl_22.0.0.bb python3-pyopenssl: Add from meta-oe/meta-python 2022-03-18 23:27:27 +00:00
python3-pyparsing_3.0.9.bb python3-pyparsing: upgrade 3.0.8 -> 3.0.9 2022-05-20 22:52:23 +01:00
python3-pyrsistent_0.18.1.bb classes/setuptools_build_meta: rename to python_setuptools_build_meta 2022-03-20 00:02:22 +00:00
python3-pysocks_1.7.1.bb python3-pysocks: Add from meta-oe/meta-python 2022-03-18 23:27:27 +00:00
python3-pytest_7.1.3.bb python3-pytest: depend on python3-tomli instead of python3-toml 2023-02-15 21:47:00 +00:00
python3-pytest-runner_6.0.0.bb python3-pytest-runner: upgrade 5.3.1 -> 6.0.0 2022-03-30 13:07:41 +01:00
python3-pytest-subtests_0.8.0.bb python3-pytest-subtests: upgrade 0.7.0 -> 0.8.0 2022-05-31 15:24:18 +01:00
python3-pytz_2022.2.1.bb python3-pytz: upgrade 2022.1 -> 2022.2.1 2022-08-21 22:51:42 +01:00
python3-pyyaml_6.0.bb classes/setuptools_build_meta: rename to python_setuptools_build_meta 2022-03-20 00:02:22 +00:00
python3-requests_2.28.1.bb python3-requests: add python3-compression dependency 2022-08-25 11:08:06 +01:00
python3-rfc3339-validator_0.1.4.bb python3-rfc3339/3986-validator: correct upstream version check 2021-11-29 23:07:13 +00:00
python3-rfc3986-validator_0.1.1.bb python3-rfc3986-validator: switch from SRC_URI:append to SRC_URI += 2022-09-13 10:36:50 +01:00
python3-rfc3987_1.3.8.bb meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers 2022-02-20 16:45:25 +00:00
python3-ruamel-yaml_0.17.21.bb python3-ruamel-yaml: upgrade 0.17.20 -> 0.17.21 2022-02-16 09:46:29 +00:00
python3-scons_4.4.0.bb python3-scons: upgrade 4.3.0 -> 4.4.0 2022-08-04 16:27:25 +01:00
python3-semantic-version_2.10.0.bb python3-semantic-version: upgrade 2.9.0 -> 2.10.0 2022-05-31 15:24:18 +01:00
python3-setuptools_65.0.2.bb python3-setuptools: fix for CVE-2022-40897 2023-04-04 17:46:24 +01:00
python3-setuptools-rust_1.5.1.bb python3-setuptools-rust: update 1.4.1 -> 1.5.1 2022-08-21 22:51:41 +01:00
python3-setuptools-scm_7.0.5.bb python3-setuptools-scm: upgrade 7.0.3 -> 7.0.5 2022-07-23 13:55:26 +01:00
python3-six_1.16.0.bb python3-six: upgrade 1.15.0 -> 1.16.0 2021-05-16 08:29:59 +01:00
python3-smartypants_2.0.0.bb python3-smartypants: patch hash bang to python3 2022-02-25 15:07:50 +00:00
python3-smmap_5.0.0.bb python3-smmap: update to 5.0.0 2021-10-18 13:48:17 +01:00
python3-snowballstemmer_2.2.0.bb python3-snowballstemmer: Add new recipe 2022-03-18 23:27:27 +00:00
python3-sortedcontainers_2.4.0.bb python3-sortedcontainers: upgrade 2.3.0 -> 2.4.0 2021-05-21 15:18:23 +01:00
python3-sphinx_5.1.1.bb python3-sphinx: upgrade 5.0.2 -> 5.1.1 2022-08-10 08:25:28 +01:00
python3-sphinx-rtd-theme_1.0.0.bb python3-sphinx-rtd-theme: upgrade 0.5.0 -> 1.0.0 2022-04-20 13:13:59 +01:00
python3-sphinxcontrib-applehelp_1.0.2.bb python3-sphinxcontrib-applehelp: add new recipe 2022-03-18 23:27:28 +00:00
python3-sphinxcontrib-devhelp_1.0.2.bb python3-sphinxcontrib-devhelp: Add new recipe 2022-03-18 23:27:27 +00:00
python3-sphinxcontrib-htmlhelp_2.0.0.bb python3-sphinxcontrib-htmlhelp: Add new recipe 2022-03-18 23:27:28 +00:00
python3-sphinxcontrib-jsmath_1.0.1.bb python3-sphinxcontrib-jsmath: Add new recipe 2022-03-18 23:27:28 +00:00
python3-sphinxcontrib-qthelp_1.0.3.bb python3-sphinxcontrib-qthelp: Add new recipe 2022-03-18 23:27:27 +00:00
python3-sphinxcontrib-serializinghtml_1.1.5.bb python3-sphinxcontrib-serializinghtml: Add new recipe 2022-03-18 23:27:28 +00:00
python3-strict-rfc3339_0.7.bb meta: remove obsolete PIP_INSTALL_PACKAGE 2022-03-12 09:20:03 +00:00
python3-subunit_1.4.0.bb meta: remove obsolete PIP_INSTALL_PACKAGE 2022-03-12 09:20:03 +00:00
python3-testtools_2.5.0.bb python3-testools: update 2.4.0 -> 2.5.0 2021-07-24 16:33:47 +01:00
python3-toml_0.10.2.bb Convert to new override syntax 2021-08-02 15:44:10 +01:00
python3-tomli_2.0.1.bb classes/flit_core: rename to python_flit_core 2022-03-17 16:44:33 +00:00
python3-typing-extensions_4.3.0.bb python3-typing-extensions: upgrade 4.2.0 -> 4.3.0 2022-07-12 23:56:10 +01:00
python3-typogrify_2.0.7.bb Convert to new override syntax 2021-08-02 15:44:10 +01:00
python3-urllib3_1.26.12.bb python3-urllib3: upgrade 1.26.11 -> 1.26.12 2022-09-01 10:14:01 +01:00
python3-vcversioner_2.16.0.0.bb python: import vcversioner from meta-python 2021-11-26 17:01:08 +00:00
python3-wcwidth_0.2.5.bb Convert to new override syntax 2021-08-02 15:44:10 +01:00
python3-webcolors_1.12.bb python3-webcolors: upgrade 1.11.1 -> 1.12 2022-05-31 15:24:18 +01:00
python3-wheel_0.37.1.bb classes/flit_core: rename to python_flit_core 2022-03-17 16:44:33 +00:00
python3-zipp_3.8.1.bb python3-zipp: upgrade 3.8.0 -> 3.8.1 2022-07-23 13:55:26 +01:00